[CryoLogic]

If you are interested in learning web app security but can't get into Stanford, consider reading this book: https://www.amazon.com/Web-Application-Security-Exploitation...

Covers just about everything a software engineer (or web developer) needs to learn in order to get into security.

[mr_overalls]

The Web Application Hacker's Handbook is also practically a must-read for those in the field.

https://www.amzn.com/B005LVQA9S/

[blinkingled]

+1 for WAHH! It is quite good in that it covers everything and is very readable for a book on subject as this.

[magicalist]

> If you are interested in learning web app security but can't get into Stanford...

there's slides, video, and linked readings for all the sessions in this class, though.

[tptacek]

The gold standard for this stuff is The Web App Hacker's Handbook.